Restrict ability to create pipelines

silvamerica · March 27, 2019, 4:57pm

Our team would like the ability to restrict creation and editing of pipelines. If someone’s Buildkite account gets compromised, an attacker would have the ability to create new pipelines or edit existing pipelines to run unapproved code within the context of our codebase.

How do others deal with this issue?

lox · March 28, 2019, 1:12am

We’re adding this soon for Enterprise accounts!

Out of interest, how are you protecting against compromised accounts for your source control?

silvamerica · March 28, 2019, 5:21pm

Our source control service allows us to require 2FA for users in our organization, so we have at least a little bit more protection there.

Topic		Replies	Views
🆕 ✍️ Blog: Secure your CI/CD pipelines with clear boundaries Announcements	0	94	March 5, 2024
Secure pipeline secrets General	6	1555	July 19, 2021
Force 2FA for user in an organization Features Requests	2	791	February 7, 2020
Guidelines for managing pipeline secrets Announcements	0	459	July 3, 2019
GitHub commit status via OAuth integration General	2	479	November 12, 2020

Restrict ability to create pipelines

Related Topics